b0359d70616a189371e54a169398521c0114c73e797ef0ae849becae1014cbb7 | Triage

Sharing

General

Target

678923982bc7d83f53fdf068b43b77e4
Size

241KB
Sample

231226-mlareagad7
MD5

678923982bc7d83f53fdf068b43b77e4
SHA1

ed9e274db40ec0b883e9e81f83c29a51d2efd5bb
SHA256

b0359d70616a189371e54a169398521c0114c73e797ef0ae849becae1014cbb7
SHA512

b0ec90342c3aab0ec1071ad99442c02fc5442ed3a7d2b2637fe8b439a325d18e42d778205f795f1ff926203e333efd1bcb4cabeefe18109fe8e62a5c48980cda
SSDEEP

6144:tmU5DJi8BnA/dizLz5O7YLm4nrhk9CrwuMXjXYDEU:tm8NV+/gQ+xFk9Cr6TYr

Score

7^/10

Malware Config

Targets

- Target
  
  678923982bc7d83f53fdf068b43b77e4
- Size
  
  241KB
- MD5
  
  678923982bc7d83f53fdf068b43b77e4
- SHA1
  
  ed9e274db40ec0b883e9e81f83c29a51d2efd5bb
- SHA256
  
  b0359d70616a189371e54a169398521c0114c73e797ef0ae849becae1014cbb7
- SHA512
  
  b0ec90342c3aab0ec1071ad99442c02fc5442ed3a7d2b2637fe8b439a325d18e42d778205f795f1ff926203e333efd1bcb4cabeefe18109fe8e62a5c48980cda
- SSDEEP
  
  6144:tmU5DJi8BnA/dizLz5O7YLm4nrhk9CrwuMXjXYDEU:tm8NV+/gQ+xFk9Cr6TYr
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2